phpLDAPadmin issues

Discussion in 'Installation/Configuration' started by statiic, Aug 17, 2010.

  1. statiic

    statiic New Member

    HI,

    I'm having trouble getting phpLDAPadmin working correctly.

    I'm using CENTOS and I have openldap installed according to this manual:
    http://www.l4l.be/index.php/linuxdocs/36-linux-server/179-centos-ldap

    Of course I have the nessecary extensions for php installed too.
    Now I installed phpldapadmin and when I go to the admin it displays the admin correctly. However when I click on the "login" link on the left I receive the following error in a javascript popup window:
    "There was a problem with the request." and nothing happens. I cannot see any login form. (Screenshot attached of the error)

    Anyone has any suggestions why it won't work?
     

    Attached Files:

  2. Mark_NL

    Mark_NL New Member

    check your ldap log files, php / apache error logs .. see if you can find anything there.
     
  3. statiic

    statiic New Member

    Apache gives the following error:

    [Tue Aug 17 16:24:09 2010] [error] [client XXX] mod_security: Access denied with code 403. Pattern match "/(cse|cmd)\\\\.(c|dat|gif|jpe?g|jpeg|png|sh|txt|bmp|dat|txt|js|html?|tmp|php|asp)\\\\?" at REQUEST_URI [severity "EMERGENCY"] [hostname "XXX"] [uri "/phpldapadmin/htdocs/cmd.php?cmd=login_form&server_id=1&meth=ajax"] [unique_id "TGqbiW1GAXUAADuTWIEAAAAG"]
    [Tue Aug 17 16:24:09 2010] [error] [client XXX] File does not exist: /var/www/html/403.shtml, referer: http://XXX/phpldapadmin/htdocs/index.php
    [Tue Aug 17 16:24:11 2010] [error] [client XXX] mod_security: Access denied with code 403. Pattern match "/(cse|cmd)\\\\.(c|dat|gif|jpe?g|jpeg|png|sh|txt|bmp|dat|txt|js|html?|tmp|php|asp)\\\\?" at REQUEST_URI [severity "EMERGENCY"] [hostname "XXX"] [uri "/phpldapadmin/htdocs/cmd.php?cmd=login_form&server_id=1&meth=ajax"] [unique_id "TGqbi21GAXUAADwxapEAAAAE"]
    [Tue Aug 17 16:24:11 2010] [error] [client XXX] File does not exist: /var/www/html/403.shtml, referer: http://XXX/phpldapadmin/htdocs/index.php
     
  4. Mark_NL

    Mark_NL New Member

    disable mod_security, or config it so you're allowed to access those files.
     
  5. statiic

    statiic New Member

    Ok I found a modsecurity folder in /etc/httpd/conf.d/mod_security and I have the following files in there:

    exclude.conf
    rootkids.conf
    rules.conf
    rules2.conf

    What should I do?
     
  6. statiic

    statiic New Member

    Problem is solved by creating an htaccess file in that folder with the following code:

    SecFilterEngine Off
    SecFilterScanPOST Off
     
  7. Mark_NL

    Mark_NL New Member

    google is your friend ;)
     

Share This Page